Overview

overview

10

Static

static

0085b9f453...d3.dll

windows7_x64

10

0085b9f453...d3.dll

windows10_x64

10

Resubmissions

20-05-2021 16:37

210520-5rqy5vsltx 10

19-05-2021 21:01

210519-93e2p5lrpa 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0085b9f4536d96dafb67cb2293662f607266ae5da53d3.dll

  • Size

    40KB

  • Sample

    210520-5rqy5vsltx

  • MD5

    5a043575411015d76f638a4d13e32300

  • SHA1

    b74e5a0190456aea96fc51787ad41df8ed804666

  • SHA256

    0085b9f4536d96dafb67cb2293662f607266ae5da53d39249bad772ce2766268

  • SHA512

    a9e740ccebe42d9f9662417078135f15d8701e15b6dfd930bca202365b3328c70ad42aa51d3de4cbb2672a6f1969aa3ee4f50c3bfa4db4b7a9710338675ad9b7

Score
10/10
icedid632457322Photoloaderbankertrojan

Malware Config

Extracted

Family

icedid

Campaign

632457322

C2

kickersflyers.bid

Targets

    • Target

      0085b9f4536d96dafb67cb2293662f607266ae5da53d3.dll

    • Size

      40KB

    • MD5

      5a043575411015d76f638a4d13e32300

    • SHA1

      b74e5a0190456aea96fc51787ad41df8ed804666

    • SHA256

      0085b9f4536d96dafb67cb2293662f607266ae5da53d39249bad772ce2766268

    • SHA512

      a9e740ccebe42d9f9662417078135f15d8701e15b6dfd930bca202365b3328c70ad42aa51d3de4cbb2672a6f1969aa3ee4f50c3bfa4db4b7a9710338675ad9b7

    Score
    10/10
    icedid632457322Photoloaderbankertrojan

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

      trojanbankericedid

    • PhotoLoader Payload

      IcedID downloder-Photloader.

      Photoloader
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks